ramnit | 174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637 | Triage

Submit
Reports

Overview

overview

Static

static

174d303881...37.dll

windows7-x64

174d303881...37.dll

windows10-2004-x64

Sharing

General

Target

174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637
Size

634KB
Sample

221123-vraycscf7x
MD5

54c458c60d0d147b01354bbd497bdf90
SHA1

3cb11814ce54e4d63a7edd018e8d8da43103c224
SHA256

174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637
SHA512

3598a962a7ad35014e5d495327f25301facf1df3033dab9aa007c752125ae55626fea8de496285e1ee8a9b41fa0b23b727cfd483f94bddb81a03b175fc4553a0
SSDEEP

6144:Y0pzrbBgbYYiu6mlQaMgovZuI57y3pkAEHe9drzZe/gVQmOu8pUk+mUHtQ2mUfzi:Y0dBErvg5vapzrlUgCPpUk+urEzdjwN/

Score

10^/10

ramnit banker spyware stealer trojan worm

Static task

static1

Behavioral task

behavioral1

Sample

174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637.dll

Resource

win7-20221111-en

ramnit banker spyware stealer trojan worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637.dll

Resource

win10v2004-20221111-en

ramnit banker spyware stealer trojan worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637
- Size
  
  634KB
- MD5
  
  54c458c60d0d147b01354bbd497bdf90
- SHA1
  
  3cb11814ce54e4d63a7edd018e8d8da43103c224
- SHA256
  
  174d303881482e038c04f95484d15088eb4160cf5bd3f21aba0c12c9b50a3637
- SHA512
  
  3598a962a7ad35014e5d495327f25301facf1df3033dab9aa007c752125ae55626fea8de496285e1ee8a9b41fa0b23b727cfd483f94bddb81a03b175fc4553a0
- SSDEEP
  
  6144:Y0pzrbBgbYYiu6mlQaMgovZuI57y3pkAEHe9drzZe/gVQmOu8pUk+mUHtQ2mUfzi:Y0dBErvg5vapzrlUgCPpUk+urEzdjwN/
Score

10^/10

ramnit banker spyware stealer trojan worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanworm

behavioral2

ramnitbankerspywarestealertrojanworm

© 2018-2024

Terms | Privacy